CRITICAL🇵🇱 Wersja polska

CVE-2025-30113

CVSS 9.8v3.1pub. 2025-03-18upd. 2025-05-22

An issue was discovered on the Forvia Hella HELLA Driving Recorder DR 820. Hardcoded Credentials exist in the APK for Ports 9091 and 9092. The dashcam's Android application contains hardcoded credentials that allow unauthorized access to device settings through ports 9091 and 9092. These credentials, stored in cleartext, can be exploited by an attacker who gains access to the dashcam's network.

🤖 AI Analysis
How it works

The Android application accompanying the device contains authentication credentials hardcoded directly in the APK file (CWE-798 — use of hardcoded credentials). These credentials are stored in unencrypted plaintext. An attacker who gains access to the network on which the video recorder operates can read this data from the APK file and use it to connect to services listening on ports 9091 and 9092, thereby obtaining unauthorized access to the device settings.

Impact

An attacker with access to the device's network can obtain full, unauthorized access to the video recorder settings, which potentially enables modification of configuration, data reading, and compromise of the device's confidentiality, integrity, and availability.

Mitigation & patch

Apply patches available from the manufacturer according to the references. As interim remedial measures, it is recommended to isolate the device from untrusted networks, implement network segmentation (e.g., dedicated Wi-Fi network for IoT devices), and restrict access to ports 9091 and 9092 at the firewall level.

Who is affected

Forvia Hella HELLA Driving Recorder DR 820 — firmware and Android application (APK) for this device; specific versions indicated in the manufacturer's references

Analysis generated by Claude AI (Anthropic) based on NVD data. Always verify with vendor.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Hella Dr 820

    HW
    Hella
    wszystkie wersje
  • Hella Dr 820 Firmware

    OS
    Hella
    wszystkie wersje
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
CWE
References

Related vulnerabilities

CVE-2025-30114CRITICAL9.1PL ✓ten sam produkt

Hella DR 820: Pominięcie uwierzytelniania przez spoofing adresu MAC

CVE-2025-30115CRITICAL9.8PL ✓ten sam produkt

Hella DR 820: stałe, niezmieniane domyślne dane logowania do sieci Wi-Fi

CVE-2025-30116HIGH7.5ten sam produkt

An issue was discovered on the Forvia Hella HELLA Driving Recorder DR 820. Remotely Dumping of Video Footage a...

CVE-2025-30117HIGH7.3ten sam produkt

An issue was discovered on the Forvia Hella HELLA Driving Recorder DR 820. Managing Settings and Obtaining Sen...